“We’re excited about these advanced capabilities that optimize how organizations detect, investigate and respond to threats,” said Haiyan Song, senior vice president of security markets, Splunk. “Customers now gain insights across the entire enterprise and take action more quickly by leveraging the combined power of machine learning, anomaly detection, correlation and ad-hoc investigation in an integrated solution.”

Organizations Can Now Leverage Splunk UBA Machine Learning Throughout the SIEM Workflow
Splunk UBA anomaly, threat and user context data are now available in Splunk ES. This integration includes the ability to:

Enhance detection and visibility of malicious attackers and insiders’ activities by combining and correlating behavioral analytics with data from enterprise and security technologies, such as threat intelligence, IPS and DLP.

Expand threat intelligence through the addition of Splunk Add-on for Facebook ThreatExchange.

Learn more about Splunk ES on the Splunk website. Splunk ES 4.1 requires Splunk Enterprise 6.3 or Splunk Cloud. Splunk ES can be run standalone or integrated with Splunk UBA.

About Splunk Inc.

Splunk Inc. (NASDAQ: SPLK) is the market-leading platform that powers Operational Intelligence. We pioneer innovative, disruptive solutions that make machine data accessible, usable and valuable to everyone. More than 11,000 customers in over 110 countries use Splunk software and cloud services to make business, government and education more efficient, secure and profitable. Join hundreds of thousands of passionate users by trying Splunk solutions for free: http://www.splunk.com/free-trials.